Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

can not add aone security group to another

Posted on 2009-04-03
3
Medium Priority
?
344 Views
Last Modified: 2012-05-06
I am trying to do something simple, but for some weird reason It won't work. I have created a global security group  called http_access and tried adding the group domain users to it. It will not work. I tried several tests groups also tring to add test1 to test2 and that does not work. adding users to the groups does work. I tried the same thing on a different domain as a sanity check and it works fine. Any ideas?
0
Comment
Question by:rob_geiger
  • 2
3 Comments
 
LVL 9

Expert Comment

by:SCCMCanuck
ID: 24062540
Are you recieveing an error message when trying to do this?
0
 
LVL 17

Expert Comment

by:Nik
ID: 24062570
Yes, any error on this. Do you have the same permissions as on other domain?
0
 
LVL 9

Accepted Solution

by:
SCCMCanuck earned 2000 total points
ID: 24062638
Your domain is most likely in Mixed Mode. Like group nesting is not available in mixed mode due to legacy NT4 domain controllers. See the following article for more details:

http://www.windowsecurity.com/articles/How-Nest-Users-Groups-Permissions.html

If you want to confirm what functional level your domain is running in do the following:

1. Right-click on your server in the active directory users and computers snap-in
2. Select raise Domain Functinal Level.
3. Examine the Current Domain Functional Level Field.

*Note: Before changing the functional Level (if this is indeed the problem) you must assess the reprucutions of this action and ensure that the Domain Controller is not servicing legacy clients.

Please read the following for Microsoft Technical Reference for more information about domain functional levels:

http://technet.microsoft.com/en-us/library/cc757019.aspx

Let me know if you have any more questions :)
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Uncontrolled local administrators groups within any organization pose a huge security risk. Because these groups are locally managed it becomes difficult to audit and maintain them.
After seeing many questions for JRNL_WRAP_ERROR for replication failure, I thought it would be useful to write this article.
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles to another domain controller. Log onto the new domain controller with a user account t…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

876 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question